CVE-2011-1341
Aimluck Aipo < 4.0.4.0 and Aipo for ASP < 4.0.4.0 - Cross-Site Request Forgery
Title source: llmDescription
Cross-site request forgery (CSRF) vulnerability in Aimluck Aipo before 4.0.4.0, and Aipo for ASP before 4.0.4.0, allows remote attackers to hijack the authentication of administrators for requests that modify data.
References (3)
Core 3
Core References
Patch x_refsource_confirm
http://jvn.jp/en/jp/JVN72854072/91216/index.html
Patch third-party-advisory
x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2011-000062
Third Party Advisory third-party-advisory
x_refsource_jvn
http://jvn.jp/en/jp/JVN72854072/index.html
Scores
EPSS
0.0059
EPSS Percentile
43.8%
Details
CWE
CWE-352
Status
published
Products (4)
aimluck/aipo
4.0.1.0
aimluck/aipo
4.0.2.0
aimluck/aipo
< 4.0.3.0
aimluck/aipo-asp
< 3.0.1.0
Published
Aug 19, 2011
Tracked Since
Feb 18, 2026